Ghassan Amaimiaghassanamaimia.hashnode.dev·Jun 20, 2024OSCP Journey : TJ_Null - HTB/SearchI - Introduction : Gaining the initial foothold for this box was a bit challenging, but once the process began, it became incredibly engaging. This box is an excellent example of a comprehensive Active Directory challenge and is a must-try. It covers...Discuss#cybersecurity
Dylan Hunthashofdarkness.hashnode.dev·Oct 21, 2023Kerberoasting: Using Impacket at the Gates of HadesKerberoasting is a technique used in post-exploitation attacks to extract the password hash of an Active Directory account that has a Service Principal Name (SPN). Since Kerberoasting leverages built-in AD functionality, it can be very difficult to d...Discuss#cybersecurity
Dinh Huu Locloocj.hashnode.dev·Oct 20, 2023On Attacking Kerberos Authentication Protocol in Windows Active Directory Services: A practical surveyĐây là bản dịch của bài viết này ABSTRACT Tổ chức sử dụng dịch vụ Windows Active Directory để xác thực user trong mạng với giao thức Kerberos Authentication. Do đó, cần phải nghiêm cứu tính kháng của nó đối với các loại tấn công mà nó có thể gặp phải...Discuss·27 readsADKerberos
cateOVRcateovr.hashnode.dev·Sep 10, 2023Active Directory PentestingIntroduction My final year project at the University of Malaga (Spain) is the creation of an Active Directory environment for its exploitation. The objective of this project is to highlight the most common attacks that occur in real business environm...DiscussActive Directory
Maik Romaikroservice.com·Aug 24, 2023How does Kerberos work - an introduction for beginner.Introduction Kerberos is an authentication protocol that superseded NTLM with the release of Windows 2000 (technically…) Technically?! Well… It's complicated 😅 Long story short - NTLM is still alive and kicking and… it might still be the fall-back s...Discuss·1 like·2.0K readshacking
Nur Kholis M.kholis.hashnode.dev·Jul 13, 2023Beeline: Failed to find any Kerberos tgtIssue: beeline failed with following errors: 3/07/13 09:43:51 [main]: ERROR transport.TSaslTransport: SASL negotiation failure javax.security.sasl.SaslException: GSS initiate failed at com.sun.security.sasl.gsskerb.GssKrb5Client.evaluateChall...Discusshive
PopLab AgencyforAD Attacksblog.ad-attacks.com·May 28, 2023Understanding Pass-the-Ticket (PtT) Attacks: A Comprehensive GuidePass-the-ticket (PtT) attacks have emerged as a significant threat in the realm of cybersecurity. By exploiting weaknesses in Kerberos authentication within Active Directory (AD) environments, PtT attacks allow malicious actors to move laterally thro...DiscussActive Directory
RFSforAD Attacksblog.ad-attacks.com·May 21, 2023Kerberos Silver Ticket Attack Explained (Theory)Kerberos Silver Ticket Attack – As the digital landscape evolves, ensuring secure authentication has become paramount. Unfortunately, new threats constantly emerge, challenging the effectiveness of existing security measures. One such threat is the S...Discuss·49 readsKerberosKerberos
RFSforAD Attacksblog.ad-attacks.com·May 21, 2023Kerberos Golden Ticket Attack ExplainedThe Golden Ticket attack is a sophisticated and stealthy cyber threat that targets Active Directory (AD) environments. This article delves into the intricacies of the Golden Ticket attack, providing a comprehensive overview of its nature, methodologi...Discuss·57 readsKerberosActive Directory
Danaa Salamdanaa.hashnode.dev·May 19, 2023Introduction to KerberosKerberos is a network authentication protocol that provides secure authentication for client-server applications over potentially insecure networks. It was developed by MIT (Massachusetts Institute of Technology) in the 1980s and has become a widely ...DiscussKerberos